403 response

1. % Total % Received % Xferd Average Speed Time Time Time Current
2. Dload Upload Total Spent Left Speed
3.  
4. 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Trying 104.16.29.235...
5. * Connected to api.fitbit.com (104.16.29.235) port 443 (#0)
6. * ALPN, offering http/1.1
7. * Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
8. * successfully set certificate verify locations:
9. * CAfile: /etc/ssl/certs/ca-certificates.crt
10. CApath: none
11. * TLSv1.2 (OUT), TLS header, Certificate Status (22):
12. } [5 bytes data]
13. * TLSv1.2 (OUT), TLS handshake, Client hello (1):
14. } [512 bytes data]
15. * TLSv1.2 (IN), TLS handshake, Server hello (2):
16. { [108 bytes data]
17. * TLSv1.2 (IN), TLS handshake, Certificate (11):
18. { [2744 bytes data]
19. * TLSv1.2 (IN), TLS handshake, Server key exchange (12):
20. { [333 bytes data]
21. * TLSv1.2 (IN), TLS handshake, Server finished (14):
22. { [4 bytes data]
23. * TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
24. } [70 bytes data]
25. * TLSv1.2 (OUT), TLS change cipher, Client hello (1):
26. } [1 bytes data]
27. * TLSv1.2 (OUT), TLS handshake, Finished (20):
28. } [16 bytes data]
29. * TLSv1.2 (IN), TLS change cipher, Client hello (1):
30. { [1 bytes data]
31. * TLSv1.2 (IN), TLS handshake, Finished (20):
32. { [16 bytes data]
33. * SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
34. * ALPN, server accepted to use http/1.1
35. * Server certificate:
36. * subject: OU=Domain Control Validated; OU=PositiveSSL Multi-Domain; CN=ssl100216.cloudflaressl.com
37. * start date: May 15 00:00:00 2015 GMT
38. * expire date: Dec 31 23:59:59 2015 GMT
39. * subjectAltName: api.fitbit.com matched
40. * issuer: C=GB; ST=Greater Manchester; L=Salford; O=COMODO CA Limited; CN=COMODO Domain Validation Secure Server CA 2
41. * SSL certificate verify ok.
42. } [5 bytes data]
43. > GET /1/user/-/activities/heart/date/2015-10-19/2015-10-20/1min/time/23:00/01:00.json HTTP/1.1
44. > Host: api.fitbit.com
45. > User-Agent: curl/7.45.0
46. > Accept: */*
47. > Authorization: Bearer eyJhbGciOiJIUzI1NiJ9.eyJleHAiOjE0NDU2MzMyNDIsInNjb3BlcyI6Indsb2Mgd3BybyB3bnV0IHdzbGUgd3NldCB3aHIgd3dlaSB3YWN0IHdzb2MiLCJzdWIiOiIzUlRLOFYiLCJhdWQiOiIyMjlXSEQiLCJpc3MiOiJGaXRiaXQiLCJ0eXAiOiJhY2Nlc3NfdG9rZW4iLCJpYXQiOjE0NDU2Mjk2NDJ9.lCY3TKLAWhvpv4L8P6S6pNgB_8-AaWy4RwDYH1Maxjo
48. >
49.  
50. 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0{ [5 bytes data]
51. < HTTP/1.1 403 Forbidden
52. < Server: cloudflare-nginx
53. < Date: Fri, 23 Oct 2015 20:02:24 GMT
54. < Content-Type: application/json;charset=UTF-8
55. < Transfer-Encoding: chunked
56. < Connection: keep-alive
57. < Set-Cookie: __cfduid=d3a7272790bc2c7491aca705ebbcba87a1445630544; expires=Sat, 22-Oct-16 20:02:24 GMT; path=/; domain=.fitbit.com; HttpOnly
58. < X-UA-Compatible: IE=edge,chrome=1
59. < Expires: Thu, 01 Jan 1970 00:00:00 GMT
60. < Cache-control: no-cache, must-revalidate
61. < Pragma: no-cache
62. < Fitbit-Rate-Limit-Limit: 150
63. < Fitbit-Rate-Limit-Remaining: 149
64. < Fitbit-Rate-Limit-Reset: 3456
65. < Set-Cookie: JSESSIONID=35F45F45D254CB42C50EB974B5610928.fitbit1; Path=/; HttpOnly
66. < Content-Language: en
67. < Vary: Accept-Encoding
68. < X-Frame-Options: SAMEORIGIN
69. < CF-RAY: 23a00a140f4d2b9a-AMS
70. <
71. { [268 bytes data]
72.  
73. 100 261 0 261 0 0 462 0 --:--:-- --:--:-- --:--:-- 461
74. * Connection #0 to host api.fitbit.com left intact
75. {"errors":[{"errorType":"insufficient_permissions","message":"API client is not authorized by Fitbit to access the resource requested. Visit https://dev.fitbit.com/docs/oauth2 for more information on the Fitbit Web API authorization process."}],"success":false}